Unrated severityNVD Advisory· Published Jul 3, 2013· Updated Apr 29, 2026
CVE-2013-1961
CVE-2013-1961
Description
Stack-based buffer overflow in the t2p_write_pdf_page function in tiff2pdf in libtiff before 4.0.3 allows remote attackers to cause a denial of service (application crash) via a crafted image length and resolution in a TIFF image file.
Affected products
49cpe:2.3:a:remotesensing:libtiff:*:*:*:*:*:*:*:*+ 48 more
- cpe:2.3:a:remotesensing:libtiff:*:*:*:*:*:*:*:*range: <=4.0.3
- cpe:2.3:a:remotesensing:libtiff:3.4:*:*:*:*:*:*:*
- cpe:2.3:a:remotesensing:libtiff:3.4:beta18:*:*:*:*:*:*
- cpe:2.3:a:remotesensing:libtiff:3.4:beta24:*:*:*:*:*:*
- cpe:2.3:a:remotesensing:libtiff:3.4:beta28:*:*:*:*:*:*
- cpe:2.3:a:remotesensing:libtiff:3.4:beta29:*:*:*:*:*:*
- cpe:2.3:a:remotesensing:libtiff:3.4:beta31:*:*:*:*:*:*
- cpe:2.3:a:remotesensing:libtiff:3.4:beta32:*:*:*:*:*:*
- cpe:2.3:a:remotesensing:libtiff:3.4:beta34:*:*:*:*:*:*
- cpe:2.3:a:remotesensing:libtiff:3.4:beta35:*:*:*:*:*:*
- cpe:2.3:a:remotesensing:libtiff:3.4:beta36:*:*:*:*:*:*
- cpe:2.3:a:remotesensing:libtiff:3.4:beta37:*:*:*:*:*:*
- cpe:2.3:a:remotesensing:libtiff:3.5.1:*:*:*:*:*:*:*
- cpe:2.3:a:remotesensing:libtiff:3.5.2:*:*:*:*:*:*:*
- cpe:2.3:a:remotesensing:libtiff:3.5.3:*:*:*:*:*:*:*
- cpe:2.3:a:remotesensing:libtiff:3.5.4:*:*:*:*:*:*:*
- cpe:2.3:a:remotesensing:libtiff:3.5.5:*:*:*:*:*:*:*
- cpe:2.3:a:remotesensing:libtiff:3.5.6:*:*:*:*:*:*:*
- cpe:2.3:a:remotesensing:libtiff:3.5.6:beta:*:*:*:*:*:*
- cpe:2.3:a:remotesensing:libtiff:3.5.7:*:*:*:*:*:*:*
- cpe:2.3:a:remotesensing:libtiff:3.5.7:alpha:*:*:*:*:*:*
- cpe:2.3:a:remotesensing:libtiff:3.5.7:alpha2:*:*:*:*:*:*
- cpe:2.3:a:remotesensing:libtiff:3.5.7:alpha3:*:*:*:*:*:*
- cpe:2.3:a:remotesensing:libtiff:3.5.7:alpha4:*:*:*:*:*:*
- cpe:2.3:a:remotesensing:libtiff:3.5.7:beta:*:*:*:*:*:*
- cpe:2.3:a:remotesensing:libtiff:3.6.0:*:*:*:*:*:*:*
- cpe:2.3:a:remotesensing:libtiff:3.6.0:beta:*:*:*:*:*:*
- cpe:2.3:a:remotesensing:libtiff:3.6.0:beta2:*:*:*:*:*:*
- cpe:2.3:a:remotesensing:libtiff:3.6.1:*:*:*:*:*:*:*
- cpe:2.3:a:remotesensing:libtiff:3.7.0:*:*:*:*:*:*:*
- cpe:2.3:a:remotesensing:libtiff:3.7.0:alpha:*:*:*:*:*:*
- cpe:2.3:a:remotesensing:libtiff:3.7.0:beta:*:*:*:*:*:*
- cpe:2.3:a:remotesensing:libtiff:3.7.0:beta2:*:*:*:*:*:*
- cpe:2.3:a:remotesensing:libtiff:3.7.1:*:*:*:*:*:*:*
- cpe:2.3:a:remotesensing:libtiff:3.7.2:*:*:*:*:*:*:*
- cpe:2.3:a:remotesensing:libtiff:3.7.3:*:*:*:*:*:*:*
- cpe:2.3:a:remotesensing:libtiff:3.7.4:*:*:*:*:*:*:*
- cpe:2.3:a:remotesensing:libtiff:3.8.0:*:*:*:*:*:*:*
- cpe:2.3:a:remotesensing:libtiff:3.8.1:*:*:*:*:*:*:*
- cpe:2.3:a:remotesensing:libtiff:3.8.2:*:*:*:*:*:*:*
- cpe:2.3:a:remotesensing:libtiff:3.9.0:*:*:*:*:*:*:*
- cpe:2.3:a:remotesensing:libtiff:3.9.0:beta:*:*:*:*:*:*
- cpe:2.3:a:remotesensing:libtiff:3.9.1:*:*:*:*:*:*:*
- cpe:2.3:a:remotesensing:libtiff:3.9.2:*:*:*:*:*:*:*
- cpe:2.3:a:remotesensing:libtiff:3.9.3:*:*:*:*:*:*:*
- cpe:2.3:a:remotesensing:libtiff:3.9.4:*:*:*:*:*:*:*
- cpe:2.3:a:remotesensing:libtiff:4.0.0:*:*:*:*:*:*:*
- cpe:2.3:a:remotesensing:libtiff:4.0.1:*:*:*:*:*:*:*
- cpe:2.3:a:remotesensing:libtiff:4.0.2:*:*:*:*:*:*:*
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
12- secunia.com/advisories/53237nvdVendor Advisory
- secunia.com/advisories/53765nvdVendor Advisory
- lists.fedoraproject.org/pipermail/package-announce/2013-May/104916.htmlnvd
- lists.fedoraproject.org/pipermail/package-announce/2013-May/105253.htmlnvd
- lists.fedoraproject.org/pipermail/package-announce/2013-May/105828.htmlnvd
- lists.opensuse.org/opensuse-updates/2013-06/msg00058.htmlnvd
- lists.opensuse.org/opensuse-updates/2013-06/msg00080.htmlnvd
- rhn.redhat.com/errata/RHSA-2014-0223.htmlnvd
- seclists.org/oss-sec/2013/q2/254nvd
- www.debian.org/security/2013/dsa-2698nvd
- www.securityfocus.com/bid/59607nvd
- bugzilla.redhat.com/show_bug.cginvd
News mentions
0No linked articles in our index yet.